Skip to content

Remove useless go.mod files in repo / Fix dependabot alerts #2100

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
Mar 14, 2023
Merged

Remove useless go.mod files in repo / Fix dependabot alerts #2100

merged 5 commits into from
Mar 14, 2023

Conversation

cmaglie
Copy link
Member

@cmaglie cmaglie commented Mar 8, 2023
edited
Loading

Please check if the PR fulfills these requirements

See how to contribute

  • The PR has no duplicates (please search among the Pull Requests
    before creating one)
  • The PR follows
    our contributing guidelines
  • Tests for the changes have been added (for bug fixes / features)
  • Docs have been added / updated (for bug fixes / features)
  • UPGRADING.md has been updated with a migration guide (for breaking changes)
  • configuration.schema.json updated if new parameters are added.

What kind of change does this PR introduce?

  1. Removed some go.mod / go.sum files in subdirectories:

    • client_example/go.mod, is not needed, it just replicates the content of the root go.mod
    • docsgen/go.mod, is not needed, it just replicates the content of the root go.mod
    • arduino/discovery/discovery_client/go.mod, adds a dependency on github.com/gizak/termui/v3, to remove the go.mod file I've refactored the client and removed the termui library.
      The changes above simplifies dependencies management in this repo in case of security upgrades.

  2. Upgraded golang.org/x/crypto and golang.org/x/net to fix dependabot alerts.

What is the current behavior?

What is the new behavior?

No changes

Does this PR introduce a breaking change, and is titled accordingly?

No breaking changes.

Other information

@cmaglie cmaglie self-assigned this Mar 8, 2023
@cmaglie cmaglie added type: enhancement Proposed improvement topic: infrastructure Related to project infrastructure labels Mar 8, 2023
@codecov
Copy link

codecov bot commented Mar 8, 2023
edited
Loading

Codecov Report

Patch coverage has no change and project coverage change: -1.52 ⚠️

Comparison is base (71a8576) 36.57% compared to head (7465cfc) 35.05%.

Additional details and impacted files 
@@            Coverage Diff             @@
##           master    #2100      +/-   ##
==========================================
- Coverage   36.57%   35.05%   -1.52%     
==========================================
  Files         229      232       +3     
  Lines       19630    20480     +850     
==========================================
  Hits         7180     7180              
- Misses      11605    12455     +850     
  Partials      845      845
Flag Coverage Δ
unit 35.05% <0.00%> (-1.52%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files Coverage Δ
arduino/discovery/discovery_client/main.go 0.00% <0.00%> (ø)

... and 2 files with indirect coverage changes

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report in Codecov by Sentry.
📢 Do you have feedback about the report comment? Let us know in this issue.

@cmaglie cmaglie force-pushed the remove_useless_go_mods branch from 310a3f8 to 59b065a Compare March 13, 2023 09:42
@cmaglie cmaglie changed the title Remove useless go.mod files in repo Remove useless go.mod files in repo / Fix dependabot alerts Mar 13, 2023
@cmaglie cmaglie force-pushed the remove_useless_go_mods branch from 59b065a to 7465cfc Compare March 13, 2023 09:47
@cmaglie
Copy link
Member Author

cmaglie commented Mar 13, 2023

I've added a commit to upgrade golang.org/x/crypto and golang.org/x/net to fix dependabot alerts.

@cmaglie cmaglie merged commit 245e84c into arduino:master Mar 14, 2023
This was referenced Mar 14, 2023
Closed
Closed
@cmaglie cmaglie deleted the remove_useless_go_mods branch March 14, 2023 08:42
kittaakos pushed a commit to kittaakos/arduino-cli that referenced this pull request Mar 21, 2023
@cmaglie
[skip-changelog] Remove useless go.mod files in repo / Fix dependabot…
073b2a1 
… alerts (arduino#2100)

* Removed go.mod from client_example

* Removed go.mod from docsgen

* Refactored discovery client and removed now useless go.mod files

* Updated license cache

* Upgraded some dependencies to fix dependabot alerts
@umbynos umbynos mentioned this pull request Jun 13, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Bikappa Bikappa Awaiting requested review from Bikappa

@MatteoPologruto MatteoPologruto Awaiting requested review from MatteoPologruto

@per1234 per1234 Awaiting requested review from per1234

1 more reviewer

@umbynos umbynos umbynos approved these changes

Reviewers whose approvals may not affect merge requirements
Assignees

@cmaglie cmaglie

Labels
topic: infrastructure Related to project infrastructure type: enhancement Proposed improvement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@cmaglie @umbynos